CVE-2026-33310

HIGH

Intake <2.0.9 Parameter Defaults - Command Injection

Title source: manual

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-33310. PoCs published by redyank.

AI-analyzed exploit summary The repository contains a functional PoC for CVE-2026-33310, demonstrating command injection via shell() expansion in parameter defaults within Intake catalog YAML files. The exploit leverages the automatic expansion of shell() syntax during catalog parsing to execute arbitrary commands.

Description

Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell() syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell(<command>), the command may be executed when the catalog source is accessed. This means that if a user loads a malicious catalog YAML, embedded commands could execute on the host system. Version 2.0.9 mitigates the issue by making getshell False by default everywhere.

Exploits (1)

nomisec WORKING POC

by redyank · poc

https://github.com/redyank/CVE-2026-33310

View Code ZIP pw:eip

The repository contains a functional PoC for CVE-2026-33310, demonstrating command injection via shell() expansion in parameter defaults within Intake catalog YAML files. The exploit leverages the automatic expansion of shell() syntax during catalog parsing to execute arbitrary commands.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Intake (catalog parsing library)

No auth needed

Prerequisites: Victim must load a malicious Intake catalog YAML file

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Apr 09, 2026 Full analysis →

References (2)

Core 2

Core References

X_Refsource_Confirm x_refsource_confirm

https://github.com/intake/intake/security/advisories/GHSA-37g4-qqqv-7m99

X_Refsource_Misc x_refsource_misc

https://github.com/intake/intake/commit/d0c0b6b57c1cb3f73880655ded4a9b0e18e1fd1b

View Writeup ZIP pw:eip

Scores

CVSS v3 8.8

EPSS 0.0003

EPSS Percentile 10.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-78 CWE-94

Status published

Products (2)

intake/intake < 2.0.9 (2 CPE variants)

pypi/intake 0PyPI

Published Mar 24, 2026

Tracked Since Mar 24, 2026